$ rpki-client -vvf repo-rpki.idnic.net/repo/9ab3902b-7459-4854-a5f5-09f15d8c87d3/0/3230332e3132332e36312e302f32342d3234203d3e203338373535.roa File: 3230332e3132332e36312e302f32342d3234203d3e203338373535.roa (raw, json) Hash identifier: AsaM561sK2w8TIOGds+hvFYJ2KlyXawEtR2LIP202Y8= Subject key identifier: CA:CF:E2:BF:25:5D:4F:EC:FE:53:F9:C5:58:83:C4:1C:9B:17:18:EC Certificate issuer: /CN=9F61990183B8D1048CDFE62E9616C3A9D01B15C7 Certificate serial: 45BCBF22CEB50E4CCAFF353AE7DA1F5358D9A0BA Authority key identifier: 9F:61:99:01:83:B8:D1:04:8C:DF:E6:2E:96:16:C3:A9:D0:1B:15:C7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9F61990183B8D1048CDFE62E9616C3A9D01B15C7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9ab3902b-7459-4854-a5f5-09f15d8c87d3/0/3230332e3132332e36312e302f32342d3234203d3e203338373535.roa Signing time: Thu 03 Jul 2025 12:00:03 +0000 ROA not before: Thu 03 Jul 2025 11:55:03 +0000 ROA not after: Thu 02 Jul 2026 12:00:03 +0000 asID: 38755 IP address blocks: 203.123.61.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9ab3902b-7459-4854-a5f5-09f15d8c87d3/0/9F61990183B8D1048CDFE62E9616C3A9D01B15C7.crl rsync://repo-rpki.idnic.net/repo/9ab3902b-7459-4854-a5f5-09f15d8c87d3/0/9F61990183B8D1048CDFE62E9616C3A9D01B15C7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9F61990183B8D1048CDFE62E9616C3A9D01B15C7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 Oct 2025 05:03:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:bc:bf:22:ce:b5:0e:4c:ca:ff:35:3a:e7:da:1f:53:58:d9:a0:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9F61990183B8D1048CDFE62E9616C3A9D01B15C7 Validity Not Before: Jul 3 11:55:03 2025 GMT Not After : Jul 2 12:00:03 2026 GMT Subject: CN=CACFE2BF255D4FECFE53F9C55883C41C9B1718EC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:30:b1:2a:0d:8f:8e:4f:41:8d:da:6e:21:5f: 43:75:29:92:3f:f9:53:69:04:9f:37:9d:d4:e7:9f: 8e:7b:5f:26:47:c7:fe:3a:99:bd:4b:68:d0:a8:84: 9f:bf:fd:ad:7e:59:e7:ff:11:9e:f3:c8:3f:1a:ef: a1:a1:94:97:ce:71:2c:1b:ae:98:93:b1:c9:f9:1b: f3:8d:cc:c1:5f:29:23:1d:54:7e:c0:80:04:ae:22: 71:d8:62:6a:ca:76:34:23:d0:50:cd:ee:1b:b6:47: 5a:ec:ae:d7:e1:a2:e7:ed:84:4b:9c:5b:de:8f:78: c1:04:cb:4e:40:63:f8:6a:be:bc:92:5f:fd:ab:95: ff:45:ac:00:2b:61:74:1b:ee:90:d8:da:dc:20:e9: 39:b8:4b:6c:10:fa:94:6d:72:fd:c7:cb:0f:53:cf: 7c:3a:99:36:25:9e:ec:1a:42:a5:ae:5e:18:2d:e5: dc:32:39:da:f7:b2:aa:83:6b:f3:bb:37:7c:be:0b: 2f:6a:53:02:a1:ed:e0:d1:89:ff:c0:f7:cc:f3:12: 6f:08:0e:41:33:a3:c4:33:94:82:34:9d:8a:6d:4e: e0:10:de:48:09:89:27:30:3c:c1:81:35:14:9f:3d: 07:4b:73:46:35:1a:5b:d7:88:d0:cb:38:e5:ca:48: 2e:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:CF:E2:BF:25:5D:4F:EC:FE:53:F9:C5:58:83:C4:1C:9B:17:18:EC X509v3 Authority Key Identifier: keyid:9F:61:99:01:83:B8:D1:04:8C:DF:E6:2E:96:16:C3:A9:D0:1B:15:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9ab3902b-7459-4854-a5f5-09f15d8c87d3/0/9F61990183B8D1048CDFE62E9616C3A9D01B15C7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9F61990183B8D1048CDFE62E9616C3A9D01B15C7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9ab3902b-7459-4854-a5f5-09f15d8c87d3/0/3230332e3132332e36312e302f32342d3234203d3e203338373535.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.123.61.0/24 Signature Algorithm: sha256WithRSAEncryption a0:28:aa:a5:09:07:c5:ae:5d:b0:04:58:54:e6:76:2f:99:cf: fe:57:a1:85:72:fe:37:c5:8a:2d:f1:92:e1:2e:82:3a:6a:cc: c2:ee:86:dd:42:fb:e7:9e:aa:39:e0:8a:f8:81:f9:20:16:01: 05:10:69:38:b5:1c:f7:c8:ca:ab:0d:34:dd:27:af:0d:c7:9a: 4e:d6:f1:41:e0:1d:bc:a5:79:73:c5:fe:28:11:64:6f:f0:06: 09:25:46:cc:43:36:c6:06:af:01:ea:af:d0:76:15:8f:f9:91: ec:fa:14:30:fa:67:9e:99:57:ce:0c:e8:4a:32:c0:f0:29:1a: 25:2e:46:26:cf:65:c0:85:fe:e9:8a:10:6a:cd:1b:f3:0a:43: 6d:3f:4d:a5:a2:2f:34:c8:6d:8e:44:b3:f6:41:0a:1a:ca:8e: f7:b6:e0:d5:5f:99:60:c5:ac:85:86:10:22:e4:fc:57:24:10: 6a:2d:b8:d8:5c:45:32:ae:87:ed:6d:df:74:40:2b:e2:f2:51: c5:8f:7b:6d:b4:17:82:2d:80:69:43:0a:a0:68:b8:ed:f3:db: e4:b3:bd:a0:9a:64:a1:63:86:a0:d0:1a:32:54:a8:37:a2:bb: 08:26:9e:40:8e:a4:a3:a2:08:0b:c1:cf:71:cd:d2:c9:09:ab: ce:3b:99:85 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIURby/Is61DkzK/zU659ofU1jZoLowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUY2MTk5MDE4M0I4RDEwNDhDREZFNjJFOTYxNkMzQTlE MDFCMTVDNzAeFw0yNTA3MDMxMTU1MDNaFw0yNjA3MDIxMjAwMDNaMDMxMTAvBgNV BAMTKENBQ0ZFMkJGMjU1RDRGRUNGRTUzRjlDNTU4ODNDNDFDOUIxNzE4RUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSMLEqDY+OT0GN2m4hX0N1KZI/ +VNpBJ83ndTnn457XyZHx/46mb1LaNCohJ+//a1+Wef/EZ7zyD8a76GhlJfOcSwb rpiTscn5G/ONzMFfKSMdVH7AgASuInHYYmrKdjQj0FDN7hu2R1rsrtfhoufthEuc W96PeMEEy05AY/hqvrySX/2rlf9FrAArYXQb7pDY2twg6Tm4S2wQ+pRtcv3Hyw9T z3w6mTYlnuwaQqWuXhgt5dwyOdr3sqqDa/O7N3y+Cy9qUwKh7eDRif/A98zzEm8I DkEzo8QzlII0nYptTuAQ3kgJiScwPMGBNRSfPQdLc0Y1GlvXiNDLOOXKSC5bAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUys/ivyVdT+z+U/nFWIPEHJsXGOwwHwYDVR0j BBgwFoAUn2GZAYO40QSM3+YulhbDqdAbFccwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 YWIzOTAyYi03NDU5LTQ4NTQtYTVmNS0wOWYxNWQ4Yzg3ZDMvMC85RjYxOTkwMTgz QjhEMTA0OENERkU2MkU5NjE2QzNBOUQwMUIxNUM3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUY2MTk5MDE4M0I4RDEwNDhDREZFNjJFOTYxNkMzQTlEMDFC MTVDNy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzlhYjM5MDJiLTc0NTktNDg1NC1h NWY1LTA5ZjE1ZDhjODdkMy8wLzMyMzAzMzJlMzEzMjMzMmUzNjMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM3MzUzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMt7PTANBgkqhkiG 9w0BAQsFAAOCAQEAoCiqpQkHxa5dsARYVOZ2L5nP/lehhXL+N8WKLfGS4S6COmrM wu6G3UL7556qOeCK+IH5IBYBBRBpOLUc98jKqw003SevDceaTtbxQeAdvKV5c8X+ KBFkb/AGCSVGzEM2xgavAeqv0HYVj/mR7PoUMPpnnplXzgzoSjLA8CkaJS5GJs9l wIX+6YoQas0b8wpDbT9NpaIvNMhtjkSz9kEKGsqO97bg1V+ZYMWshYYQIuT8VyQQ ai242FxFMq6H7W3fdEAr4vJRxY97bbQXgi2AaUMKoGi47fPb5LO9oJpkoWOGoNAa MlSoN6K7CCaeQI6ko6IIC8HPcc3SyQmrzjuZhQ== -----END CERTIFICATE-----Generated at Mon Oct 27 11:04:39 2025 by rpki-client